(Running Debian 'Testing' with kernel 2.4.18)
I chanced to read a copy of Linux Format magazine recently which had an article about security and appropriate software.
That prompted me to install PortSentry. But not long after that it occurred to me that I am already running a firewall (iptables) and, in theory, nothing undesirable should be getting through (I did say 'in theory'). Under those circumstances PortSentry would seem to be surplus to requirements so I uninstalled it again.
Is it overkill to run a firewall and PortSentry?
The same article also mentioned Saint (previously Satan) so I had a go at that. It lists a number of potential weaknesses on my system, lpd for example, but doesn't say what the potential weaknesses might be or how to fix them. How can I find out more on this?
This then prompted another train of thought. If inetd starts (and I assume stops) services such as Exim when an internet connection is established why do we need /etc/ppp/ip-up.d and ip-down.d to start and stop additional services. Why can't it all go in inetd (or Xinetd)?
Although I have a dial-up connection at the moment I am looking to the future to when I may have ADSL (should BT ever get round to my area - ha ha ha ha ha ha ha ha!) and a permanent connection.
Best wishes
Barry Samuels (My memory is so bad I suspect it was programmed by Microsoft)
bsamuels@beenthere-donethat.org.uk wrote:
(Running Debian 'Testing' with kernel 2.4.18)
...
The same article also mentioned Saint (previously Satan) so I had a go at that. It lists a number of potential weaknesses on my system, lpd for example, but doesn't say what the potential weaknesses might be or how to fix them. How can I find out more on this?
Some info on securing Unix/Linux systems is on CERT's website http://www.cert.org/tech_tips/unix_configuration_guidelines.html
...
Best wishes
Barry Samuels (My memory is so bad I suspect it was programmed by Microsoft)
...
Rob.
Robert Tillyard rob@vetsystems.com wrote:
bsamuels@beenthere-donethat.org.uk wrote:
(Running Debian 'Testing' with kernel 2.4.18)
...
The same article also mentioned Saint (previously Satan) so I had
a go
at that. It lists a number of potential weaknesses on my system,
lpd
for example, but doesn't say what the potential weaknesses might
be or
how to fix them. How can I find out more on this?
Some info on securing Unix/Linux systems is on CERT's website http://www.cert.org/tech_tips/unix_configuration_guidelines.html
...
Best wishes
Barry Samuels (My memory is so bad I suspect it was programmed by Microsoft)
...
Rob.
Thanks Rob.
It looks very informative even though I don't understand some (a lot?) of it.
Barry Samuels
The tag line reminds me...
Has anyone come across the BBC ad of a lad smashing up his computer ? I want the "Oh look, you've crashed" as a wav file to load on to an unsuspecting W98 box.
Regards, Paul.
On Monday 10 Jun 2002 10:11 pm, bsamuels@beenthere-donethat.org.uk wrote:
> (My memory is so bad I suspect it was programmed by Microsoft)
On Mon, Jun 10, 2002 at 10:16:15PM +0100, Paul said:
Has anyone come across the BBC ad of a lad smashing up his computer ? I want the "Oh look, you've crashed" as a wav file to load on to an unsuspecting W98 box.
Saw those adverts a couple of times. I was like oh please, you just damage some decent hardwares that could be a nice server in this room.
-
bsamuels@beenthere-donethat.org.uk -
Craig -
Paul -
Robert Tillyard